Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / af4610c39589d839551da104f7da342d86f23ea0
commitaf4610c39589d839551da104f7da342d86f23ea0[log] [tgz]
authorFlorian Westphal <fw@strlen.de>Thu Feb 25 10:08:38 2016 +0100
committerPablo Neira Ayuso <pablo@netfilter.org>Wed Mar 02 20:05:26 2016 +0100
treedd1aa462199737434bccc9b2f54cb8595d4e1407
parent5f6c253ebe93b02dece01c6f58447f16b29f6dd3 [diff]
netfilter: don't call hooks unless needed

With the previous patches in place, a netns nf_hook_list might be empty,
even if e.g. init_net performs filtering.

Thus change nf_hook_thresh to check the hook_list as well before
initializing hook_state and calling nf_hook_slow().

We still make use of static keys; if no netfilter modules are loaded
list is guaranteed to be empty.

Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
1 file changed
tree: dd1aa462199737434bccc9b2f54cb8595d4e1407
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS